CVE - CVE - 2015 - 3197

CVE-ID
cve - 2015 - 3197	了解更多国家漏洞数据库(NVD) •CVSS严重性评级•修复信息•••CPE SCAP映射脆弱的软件版本信息
描述
ssl / s2_srvr。c在OpenSSL 1.0.1 1.0.1r和1.0.2 1.0.2f并不妨碍使用禁用密码之前,这使得中间人攻击者更容易击败密码保护机制通过执行计算SSLv2的站点时,有关get_client_master_key和get_client_hello功能。
引用
注意:引用为方便读者提供帮助区分漏洞。并不是完整列表。
报价:82237 URL: http://www.securityfocus.com/bid/82237 报价:91787 URL: http://www.securityfocus.com/bid/91787 CERT-VN: VU # 257823 URL: https://www.kb.cert.org/vuls/id/257823 确认:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759 确认:http://www.openssl.org/news/万博下载包secadv/20160128.txt 确认:http://www.oracle.com/technetwork/security - advisory/cpuapr2016v3 - 2985753. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujul2016 - 2881720. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujul2017 - 3236622. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpuoct2016 - 2881722. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpuoct2017 - 3236626. - html 确认:http://www.oracle.com/technetwork/topics/security/bulletinjan2016 - 2867206. - html 确认:http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016 - 2867209. - html 确认:http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016 - 3090546. - html 确认:https://cert - portal.siemens.com/productcert/pdf/ssa - 412672. - pdf 确认:https://git.openssl.org/?p=openssl.git; =提交;h = d81a1600588b726c2bdccda7efad3cc7a87d6245 确认:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03724en_us 确认:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390893 FEDORA: FEDORA - 2016 - 527018 - d2ff URL: http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176373.html FREEBSD: FreeBSD-SA-16:11 URL: https://security.FreeBSD.org/advisories/FreeBSD-SA-16:11.openssl.asc GENTOO: glsa - 201601 - 05 URL: https://security.gentoo.org/glsa/201601-05 SECTRACK: 1034849 URL: http://www.securitytracker.com/id/1034849 SUSE: SUSE-SU-2016:0617 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html SUSE: SUSE-SU-2016:0620 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html SUSE: SUSE-SU-2016:0621 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html SUSE: SUSE-SU-2016:0624 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html SUSE: SUSE-SU-2016:0631 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html SUSE: SUSE-SU-2016:0641 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html SUSE: SUSE-SU-2016:0678 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html SUSE: SUSE-SU-2016:1057 URL: http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html SUSE: openSUSE-SU-2016:0628 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html SUSE: openSUSE-SU-2016:0637 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html SUSE: openSUSE-SU-2016:0638 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html SUSE: openSUSE-SU-2016:0640 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html SUSE: openSUSE-SU-2016:0720 URL: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html SUSE: openSUSE-SU-2016:1239 URL: http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html SUSE: openSUSE-SU-2016:1241 URL: http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html
分配中央社
红帽公司。
创建日期记录
20150410	免责声明:记录创建日期可能反映了CVE ID分配或保留的时候,,不一定表示当发现了这个漏洞,与受影响的供应商,在CVE公开披露,或更新。
阶段(遗留)
分配(20150410)
票(遗留)

评论(遗留)

提出(遗留)
N /一个
这是一个记录CVE列表,它提供了共同的标识符公开已知的网络安全漏洞。
CVE使用关键字搜索: 你也可以搜索参考使用CVE参考地图。
更多信息:CVE请求Web表单(从下拉框中选择“其他”)

回到顶部

cve - 2015 - 3197